707cacf0cd46d46e0dfd332374c2d2deaf8930c434797dde64500a76b33eca80[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

707cacf0cd46d46e0dfd332374c2d2deaf8930c434797dde64500a76b33eca80.zip
Size

275KB
MD5

8bdae4bb5b2b7f6e635058a8d0fef23e
SHA1

0ee34628d0f8a6397e6dc515b27b499813d00663
SHA256

707cacf0cd46d46e0dfd332374c2d2deaf8930c434797dde64500a76b33eca80
SHA512

f60141b95b3b780f94bd30573ae971e837afe6d43051cffccc06548e8cf2b610cdf49ce64367e32c523758930eb4b8dc8c8c0d03e4400957ff35ac8285163339
SSDEEP

6144:bUKNHyyosVZk7yBteofUgB6Ff5W8ENyQW8lYHh19:rNSy1VZSGteyB6fo8E8Qru7

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/d3ds.dll
unpack001/injector.exe

Files

707cacf0cd46d46e0dfd332374c2d2deaf8930c434797dde64500a76b33eca80.zip
.zip
Config/config.ini
.lnk
READ ME.txt
d3ds.dll
.dll windows:4 windows x86 arch:x86

a804ce09d591071859c4ef01d305dc33

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

_amsg_exit
_exit
_initterm
_iob
_lock
_unlock
_vsnprintf
abort
calloc
free
fwprintf
fwrite
malloc
memset
raise
realloc
strlen
strncat
strncmp
strncpy
vfprintf
wcscpy
wcslen
_snwprintf

ole32

CoCreateInstance
CoInitializeEx
CoTaskMemFree
CoUninitialize

shell32

SHCreateItemFromParsingName

user32

MessageBoxW

Exports

Exports

NFD_GetError
NFD_OpenDialog
NFD_OpenDialogMultiple
NFD_PathSet_Free
NFD_PathSet_GetCount
NFD_PathSet_GetPath
NFD_PickFolder
NFD_SaveDialog

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 267B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 820B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/14
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 512B - Virtual size: 359B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/102
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
injector.exe
.exe windows:6 windows x86 arch:x86

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Sections

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a804ce09d591071859c4ef01d305dc33

Headers

File Characteristics

Imports

kernel32

msvcrt

ole32

shell32

user32

Exports

Exports

Sections

.text Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 56B

.rdata Size: 14KB - Virtual size: 13KB

/4 Size: 4KB - Virtual size: 4KB

.bss Size: - Virtual size: 1KB

.edata Size: 512B - Virtual size: 267B

.idata Size: 2KB - Virtual size: 1KB

.CRT Size: 512B - Virtual size: 44B

.tls Size: 512B - Virtual size: 8B

.reloc Size: 1024B - Virtual size: 820B

/14 Size: 512B - Virtual size: 88B

/29 Size: 33KB - Virtual size: 33KB

/41 Size: 1KB - Virtual size: 1KB

/55 Size: 2KB - Virtual size: 1KB

/67 Size: 512B - Virtual size: 56B

/80 Size: 512B - Virtual size: 359B

/91 Size: 1KB - Virtual size: 1KB

/102 Size: 512B - Virtual size: 144B

Headers

DLL Characteristics

File Characteristics

Sections

.text Size: 173KB - Virtual size: 173KB

.rdata Size: 332KB - Virtual size: 331KB

.data Size: 2KB - Virtual size: 5KB

.reloc Size: 7KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 5KB

.text
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 56B

.rdata
Size: 14KB - Virtual size: 13KB

/4
Size: 4KB - Virtual size: 4KB

.bss
Size: - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 267B

.idata
Size: 2KB - Virtual size: 1KB

.CRT
Size: 512B - Virtual size: 44B

.tls
Size: 512B - Virtual size: 8B

.reloc
Size: 1024B - Virtual size: 820B

/14
Size: 512B - Virtual size: 88B

/29
Size: 33KB - Virtual size: 33KB

/41
Size: 1KB - Virtual size: 1KB

/55
Size: 2KB - Virtual size: 1KB

/67
Size: 512B - Virtual size: 56B

/80
Size: 512B - Virtual size: 359B

/91
Size: 1KB - Virtual size: 1KB

/102
Size: 512B - Virtual size: 144B

.text
Size: 173KB - Virtual size: 173KB

.rdata
Size: 332KB - Virtual size: 331KB

.data
Size: 2KB - Virtual size: 5KB

.reloc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 5KB